[Interactive Site]

Aboutme

Hello my name is Thomas Cope and for six years now I have been working as an Infrastructure and Security Specialist at IBM, while studying part time at Oxford University for a Masters Degree in Software and Systems Security. I am a programming and electronics enthusiast who enjoys working on projects in my spare time - you can learn more in the "Projects" sections below. I have a keen interest in Security, designing and building secure systems as well as performing pen tests on them. I enjoy "Capture the Flag" events and Security research. I am CISSP Certified as well as a Redhat System Engineer. I use theses skills extensively at work and for the support of this server which is used to hosts both myself and a friend's projects (Server Status). In my spare time I am a STEM Ambassador and an Associatsional (MBCS) Member of the British Computer Society. I play games such as TF2, Minecraft and Badminton, and enjoy Skiing when I get the chance. Feel free to drop me a line either on my Twitter or Linkedin. Plus I use GPG if you want to send me encrypted Mail (PubKey).

Projects

I have numerous ongoing projects all of which you can find out more below.

ssh_ws

This is a demonstration of a proof of concept I built to tunnel ssh traffic over web-sockets. I build both a client and server application to achieve this.

bad_scp

A Proof of Concept of the Linux command 'scp' client side vulnerabilities (CVE-2019-6111 + CVE-2019-6110)

Shell Site

Interactive Linux Command Line Version of this site

Using a dynamic 'filesystem' both this site and the Linux command line version adapt their content to load new projects and pages. Its all quite overly complicated but it was fun to write :)

TSTP

Toms Sentry Tracking Program

This is the 3rd incarnation on my Sentry Tracking program. Using opencv and C++, this project dynamically scans a webcam or video feed and tracks one or more targets

Snap Share

A in memory only, temporary file sharing service and API

I wanted to make a way to share files easily and a reason to learn memcached. This project is the combination of both.

SecNet

An Example Website implementing good security practice for both HTTP Headers and SSL/TLS Configuration to provide a benchmark of what a secure web server configuration should look like.

TSTD

Toms SSL / TLS Debugger

A script designed to test and debug SSL / TLS problems on AIX or Linux.

TVBG

Toms Very Basic Game

One of the largest program I've written. A simple space shooter written in C++ using OpenGL and a custom made game engine.

TAIP

Toms Rest API

A High performance rest API written in C++ to generate passwords.

Arduino Minecraft Monitor

A helpful Arduino Library for polling Minecraft Servers

A custom made Arduino library to query a Minecraft server using the bespoke UDP query API.

CCB

Conference Call Bingo

A fun game to play while on a Conference Call.

qload_convert

Mass MQ Qload Converting Program

A tool to convert a large number of files into a more 'qload' friendly format. Written in C it's blazingly fast and easy to use.

TVTS

Toms Vehicle Tracking System (Arduino GPS)

A Arduino based GPS and GRSM Tracking System using a custom built library for the Maplin GSMShield. The Arduino acquires a GPS lock, reads the value and sends the data encrypted via UDP to a collection server.

Arduino Door Lock

Fingerprint and Android Style Pattern Lock

A Arduino door lock using a Fingerprint scanner and a 7 inch touch screen.

Arduino Iron Key

A Arduino based portable HSM

A Arduino version of the Secure memory stick 'IronKey'. The Arduino acts as a HSM (Hardware Security Module) between the computer and the on board SD card shield. A Java app is used to send commands to Arduino. The Arduino enforces authentication and encryption using its on board EPPROM. After authentication, the Arduino encrypts and decrypts all of the data on the fly as it is written to a SD Card. After 10 incorrect password attempts the Arduino wipes its EPPROM destroying the Encryption key.

Golang Screen Saver

A snake style terminal screen saver written in Golang

A really simple terminal screen saver written in Golang.

SPLMIAWE

Simple Programming Language Made in a Weekend

A really simple scripting like language made in a weekend. With dynamic variable allocation and cross platform support for Windows and Linux. My first C++ project to be completely cross platform using gcc and mingw.

This Server

Tails of Setting up this Server

Running this server has taught me a lot. Jenkins, Minecraft, MQTT, Mail, Nginx, KVM, HAProxy, PHP, Mysql and more.

TAFW

Toms Application Firewall

A Web Application firewall using Regex to filter, block or alter traffic. Using a in memory policy system which can dynamically lead new polices without downtime

Pastejacking 2

A expansion on the orignal pastejacking attack using bash tricks

This is a demo of a new pastejacking attack using bash and command link tricks to fool the user into executing malicious code.

Minecraft Mods

Minibits + OnDuty + Toms Tool Kit

A collection of Minecraft Bukkit mods.

IHB

Internet Heart Beat (Inactive)

A IOT data collection services using couchdb. Collecting, storing and analyzing big data.

Blog

I make occasional posting on the IBM UK Apprentice Blog which you can check out here.

Jenkins

You can find all my projects being built and tested on the Jenkins instance running on this server.

Code

You can check out all my code on the GitWeb instance running on this server. (Please note not all of my projects or code are publicly available)

Languages

I have dabbled in many different programming languages and are keen to learn more. The list below covers the ones I use on a Frequent Basics...

  • C++
  • C
  • Erlang
  • Bash/KSH
  • Javascript
  • Golang
  • PHP
  • Visual Basic
  • Java
  • C#
  • Arduino
  • Processing
  • Python
  • Perl
I'm also familiar with some markup languages:
  • HTML5
  • CSS
  • LaTeX

Skills

Tools / Software:

  • GIT
  • Puppet
  • Jira
  • Bitbucket
  • Zabbix
  • Nginx
  • Forum Sentry
  • Entrust PKI
  • Wireshark
  • OpenSSL
  • GSKit
  • Jenkins
  • PostgreSQL
  • Systemd
  • Firewalld
  • Network Manager
  • GPG
  • Yubikey
  • Postfix
  • Mosquitto(MQTT)
  • LDAP
  • vi/vim
  • saltstack
  • Postfix
  • PAM
  • SSSD
  • Memcached
  • Gemalto SafeNet Luna Network HSM
  • OpenID Connect / OAuth / SAML
  • Keycloak
  • Docker
  • Kubernetes
  • LetsEncrypt / Certbot / Boulder
  • FreeIPA
  • JWT / JWE / JWS
  • Hashicorp Vault
IBM Specific:
  • Datapower
  • Security Directory Server
  • Security Access Manager
  • HTTP Server
  • Webseal
  • HMC
  • pSeries
  • MQ
Operating Systems:
  • AIX
  • Redhat
  • Centos
  • FreeBSD
  • Ubuntu
  • Debian

Qualificiations

  • (ISC)2 CISSP Certified
  • Redhat Certified System Engineer (RHEL 7)
  • Redhat Certified System Administrator (RHEL 7)
  • CompTIA Security+
  • CREST Certified Infrastructure Pen Tester
  • CREST Certified Wireless Pen Tester

Certifications

Awards

  • British Computer Society UK IT Apprentice of the Year 2015
  • Apprentice of the Year 2015 (South East Region England)>
  • Advance Apprentice of the Year 2014 (South Central Region England)
  • World Skills Show UK Network Security Bronze Medal

Contact

Click to decode


GDPR Notice